|
309871
|
9.8 |
CRITICAL
Network
|
code-projects
|
pharmacy_management_system
|
A vulnerability classified as critical has been found in code-projects Pharmacy Management System 1.0. Affected is an unknown function of the file /add_new_purchase.php?action=is_supplier. The manipu…
|
CWE-89
SQL Injection
|
CVE-2024-10138
|
2024-10-22 23:16 |
2024-10-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309872
|
9.8 |
CRITICAL
Network
|
code-projects
|
pharmacy_management_system
|
A vulnerability was found in code-projects Pharmacy Management System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /manage_invoice.php. The manipulation …
|
CWE-89
SQL Injection
|
CVE-2024-10136
|
2024-10-22 23:15 |
2024-10-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309873
|
3.8 |
LOW
Network
|
exceedone
|
exment
|
Incorrect permission assignment for critical resource issue exists in Exment v6.1.4 and earlier and Exment v5.0.11 and earlier. A logged-in user with the permission of table management may obtain and…
|
CWE-732
Incorrect Permission Assignment for Critical Resource
|
CVE-2024-46897
|
2024-10-22 23:09 |
2024-10-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309874
|
7.5 |
HIGH
Network
|
moxa
|
mxsecurity
|
The lack of access restriction to a resource from unauthorized users makes MXsecurity software versions v1.1.0 and prior vulnerable. By acquiring a valid authenticator, an attacker can pose as an aut…
|
NVD-CWE-Other
|
CVE-2024-4739
|
2024-10-22 23:07 |
2024-10-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309875
|
5.4 |
MEDIUM
Network
|
tahoe
|
debrandify
|
The Debrandify · Remove or Replace WordPress Branding plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File uploads in all versions up to, and including, 1.1.2 due to insuffi…
|
CWE-79
Cross-site Scripting
|
CVE-2024-9674
|
2024-10-22 23:02 |
2024-10-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309876
|
5.4 |
MEDIUM
Network
|
sajjadhsagor
|
advanced_category_and_custom_taxonomy_image
|
The Advanced Category and Custom Taxonomy Image plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's ad_tax_image shortcode in all versions up to, and including, 1.0.9 d…
|
CWE-79
Cross-site Scripting
|
CVE-2024-9425
|
2024-10-22 22:55 |
2024-10-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309877
|
7.5 |
HIGH
Network
|
oisf
|
suricata
|
Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. Prior to version 7.0.7, invalid ALPN in TLS/QUIC traffic when JA4 matching/loggin…
|
CWE-617
Reachable Assertion
|
CVE-2024-47522
|
2024-10-22 22:51 |
2024-10-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309878
|
7.5 |
HIGH
Network
|
oisf
|
suricata
|
Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. Prior to version 7.0.7, missing initialization of the random seed for "thash" lea…
|
CWE-327
Use of a Broken or Risky Cryptographic Algorithm
|
CVE-2024-47188
|
2024-10-22 22:50 |
2024-10-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309879
|
7.5 |
HIGH
Network
|
oisf
|
suricata
|
Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. Prior to version 7.0.7, missing initialization of the random seed for "thash" lea…
|
CWE-327
Use of a Broken or Risky Cryptographic Algorithm
|
CVE-2024-47187
|
2024-10-22 22:48 |
2024-10-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309880
|
5.3 |
MEDIUM
Network
|
oisf
|
suricata
|
Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. Prior to version 7.0.7, a logic error during fragment reassembly can lead to fail…
|
CWE-193
Off-by-one Error
|
CVE-2024-45796
|
2024-10-22 22:37 |
2024-10-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
